Server Software and Configuration Services
New csf v2.15
Some new features and bugfixes:
- Added a list of the applications that lfd blocks a login failure for into csf.deny, e.g. (ftpd,mod_security)
- Extended LF_DIRWATCH with a new option LF_DIRWATCH_FILE. This feature will watch for changes in directories and files listed in csf.dirwatch using an md5sum for the ls output. If the md5sum changes between checks an email alert is sent using watchalert.txt
- Modified pid file locking for the lfd process to ensure duplicate processes won’t run
- Completely reworked the child reaper code to prevent SIG_CHLD kernel errors. Removed DISABLE_SIG_CHLD_IGNORE from csf.conf for new installs
- Added new option to csf.fignore that allows you to ignore files owned by a specific user by adding an entry in the format user:bob
- Fixed bug in LF_DSHIELD timer code
- Wrapped LF_DSHIELD and LF_SPAMHAUS in a 10 second timeout to fetch their respective data
- New Feature – GLOBAL_ALLOW and GLOBAL_DENY options allow you to specify a URL where csf can grab a centralised copy of an IP allow and/or deny block list of your own. They are both retrieved after a LF_GLOBAL interval in seconds by lfd
- Added WHM UI changes for LF_DIRWATCH_FILE